What is CVE-2004-1172?

CVE-2004-1172 is a vulnerability in N/a. Published 2004-12-22.

Is CVE-2004-1172 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2004-1172

Stack-based buffer overflow in the Agent Browser in Veritas Backup Exec 8.x before 8.60.3878 Hotfix 68, and 9.x before 9.1.4691 Hotfix 40, allows remote attackers to execute arbitrary code via a registration request with a long hostname.

EPSS: 0.822 (99.2th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

rapid7/metasploit-framework

References

seer.support.veritas.com/docs/273419.htm (x_refsource_CONFIRM)
www.frsirt.com/exploits/20050111.101_BXEC.cpp.php (x_refsource_MISC)
11974 (vdb-entry, x_refsource_BID)
seer.support.veritas.com/docs/273850.htm (x_refsource_CONFIRM)
VU#907729 (x_refsource_CERT-VN, third-party-advisory)
seer.support.veritas.com/docs/273422.htm (x_refsource_CONFIRM)
13495 (x_refsource_SECUNIA, third-party-advisory)
netbackup-agent-browser-bo(18506) (vdb-entry, x_refsource_XF)
seer.support.veritas.com/docs/273420.htm (x_refsource_CONFIRM)
20041216 Veritas Backup Exec Agent Browser Registration Request Buffer Overflow Vulnerability (x_refsource_IDEFENSE, third-party-advisory)

Frequently asked questions

What is CVE-2004-1172?: CVE-2004-1172 is a vulnerability in N/a. Published 2004-12-22.
Is CVE-2004-1172 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.